$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: yXy4qYUND+Yofxr0vK528ny1lFfSY6ghsQhbOzKggB0= Subject key identifier: B7:E4:CD:5E:18:5C:82:3F:AB:F3:26:EE:9A:D7:BB:70:B2:2C:0F:1C Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 02EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 02E5 Signing time: Sun 19 Oct 2025 03:25:27 +0000 Manifest this update: Sun 19 Oct 2025 03:25:26 +0000 Manifest next update: Sun 26 Oct 2025 03:25:26 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: ARHkLX4DlM6kNVBaWNNRGI887RYL6BP9cX7E7YG9O5Q=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:25:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 750 (0x2ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Oct 19 03:25:26 2025 GMT Not After : Oct 26 03:25:26 2025 GMT Subject: CN=68f45a26-e583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:da:13:b8:67:69:a3:22:07:d3:35:90:5b:28: f4:2d:e1:e9:1e:5b:19:42:e3:70:26:78:ac:3c:8a: 2d:50:ae:e5:6f:a0:e1:08:9d:7c:b6:ec:89:24:8c: 59:f1:3b:49:17:f5:5e:86:ec:3d:1e:98:55:f9:b9: c5:af:f2:26:0e:08:c7:e6:2e:28:89:82:c2:72:52: f2:af:63:8a:05:8c:84:40:97:21:fb:8e:d0:90:e2: 5d:d8:bb:97:41:77:7d:8e:6b:49:d1:2c:22:ab:56: 55:00:f1:a7:6e:8b:38:57:66:a5:d3:67:ed:57:2a: 3a:33:24:10:24:08:21:5c:54:ab:f5:68:c2:eb:6a: cd:bc:bd:6c:45:9f:73:f2:05:fe:83:e7:54:50:d1: 29:6a:cb:c7:b3:eb:7e:8e:ee:ed:84:75:3b:0d:a3: e6:a3:15:02:4f:89:5f:57:34:43:af:66:ac:d0:e7: 9b:ac:db:a1:80:d6:96:4f:16:21:b6:7f:c0:4a:c6: 0b:d2:33:e0:f2:95:7d:a3:10:ac:63:80:90:ec:74: 42:8c:b0:bc:3c:f6:c0:2b:b0:bf:4a:fc:ea:ff:21: b2:62:bd:a7:bd:02:06:f5:b2:ce:3a:77:0a:3c:10: 7b:60:75:75:19:83:fa:9d:fa:c5:89:14:67:dc:03: 39:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E4:CD:5E:18:5C:82:3F:AB:F3:26:EE:9A:D7:BB:70:B2:2C:0F:1C X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:12:c5:46:53:ea:79:79:b5:10:34:8f:45:55:5b:71:04:23: 4e:aa:00:52:31:bb:7f:da:49:77:56:1c:63:3f:28:a7:28:68: f0:25:43:01:b2:d4:d8:82:d2:22:2d:c8:dd:3c:48:32:1f:ab: dc:48:7e:f1:05:aa:81:0c:34:f4:f0:38:70:66:5c:92:4a:55: 3f:3c:9c:2e:27:a3:d1:e8:91:a2:78:e5:7b:2a:66:67:50:17: dd:c6:31:5a:4c:20:f0:cd:fc:0e:b9:1b:f7:d5:44:85:01:58: 67:69:b4:4f:3e:5c:12:c7:45:38:5d:73:b5:e4:aa:49:c2:19: c8:48:49:c5:ac:00:96:79:84:bf:ad:0f:82:85:37:e7:29:6c: 91:5e:a0:58:3c:f8:a6:4a:f3:d1:e1:ae:1d:50:cb:58:e6:aa: e2:b5:aa:7d:d1:91:87:ee:67:8d:7a:f5:3d:60:7c:63:06:0a: ef:1f:06:10:b8:65:05:29:c9:2b:e1:36:91:f7:28:18:0c:eb: 79:94:84:70:22:3e:6b:04:ee:3f:71:19:c1:16:27:c4:d0:a4: 4b:c8:19:7b:f5:9a:03:33:40:41:01:16:b9:f9:0b:0c:c5:db: 90:34:ac:96:fa:94:40:5d:9d:2f:e2:85:e5:4d:4d:30:65:3a: de:28:64:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUxMDE5MDMyNTI2WhcNMjUxMDI2MDMyNTI2WjAYMRYwFAYD VQQDEw02OGY0NWEyNi1lNTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9oTuGdpoyIH0zWQWyj0LeHpHlsZQuNwJnisPIotUK7lb6DhCJ18tuyJJIxZ 8TtJF/Vehuw9HphV+bnFr/ImDgjH5i4oiYLCclLyr2OKBYyEQJch+47QkOJd2LuX QXd9jmtJ0Swiq1ZVAPGnbos4V2al02ftVyo6MyQQJAghXFSr9WjC62rNvL1sRZ9z 8gX+g+dUUNEpasvHs+t+ju7thHU7DaPmoxUCT4lfVzRDr2as0OebrNuhgNaWTxYh tn/ASsYL0jPg8pV9oxCsY4CQ7HRCjLC8PPbAK7C/Svzq/yGyYr2nvQIG9bLOOncK PBB7YHV1GYP6nfrFiRRn3AM58wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfkzV4Y XII/q/Mm7prXu3CyLA8cMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIEsVGU+p5ebUQNI9FVVtxBCNOqgBSMbt/2kl3VhxjPyinKGjwJUMB stTYgtIiLcjdPEgyH6vcSH7xBaqBDDT08DhwZlySSlU/PJwuJ6PR6JGieOV7KmZn UBfdxjFaTCDwzfwOuRv31USFAVhnabRPPlwSx0U4XXO15KpJwhnISEnFrACWeYS/ rQ+ChTfnKWyRXqBYPPimSvPR4a4dUMtY5qritap90ZGH7meNevU9YHxjBgrvHwYQ uGUFKckr4TaR9ygYDOt5lIRwIj5rBO4/cRnBFifE0KRLyBl79ZoDM0BBARa5+QsM xduQNKyW+pRAXZ0v4oXlTU0wZTreKGTL -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:06 2025 by rpki-client